Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f542c0-89a4-4d31-b0b5-e592a9ebe604/1/QREPZhrxHZArrNxKJUNEwf6wevk.roa
File: QREPZhrxHZArrNxKJUNEwf6wevk.roa (raw, json)
Hash identifier: 6xoeiu7d/f15lloj9PlL0WFqneUL7aEBh6X57W+vsbE=
Subject key identifier: 41:11:0F:66:1A:F1:1D:90:2B:AC:DC:4A:25:43:44:C1:FE:B0:7A:F9
Certificate issuer: /CN=6040d0b6e84023b86f8b93f31050bf51e16c81bf
Certificate serial: 01D62A88
Authority key identifier: 60:40:D0:B6:E8:40:23:B8:6F:8B:93:F3:10:50:BF:51:E1:6C:81:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEDQtuhAI7hvi5PzEFC_UeFsgb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f542c0-89a4-4d31-b0b5-e592a9ebe604/1/QREPZhrxHZArrNxKJUNEwf6wevk.roa
Signing time: Sat 01 Jan 2022 09:55:00 +0000
ROA not before: Sat 01 Jan 2022 09:55:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211212
IP address blocks: 185.196.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30812808 (0x1d62a88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040d0b6e84023b86f8b93f31050bf51e16c81bf
Validity
Not Before: Jan 1 09:55:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41110f661af11d902bacdc4a254344c1feb07af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:be:47:2f:07:20:d4:cd:db:0a:0e:2c:2b:a2:
46:65:db:d0:94:18:4a:6f:14:ec:58:79:bb:b8:05:
9d:cd:b8:64:fa:cb:57:d1:d8:35:a8:e1:c5:67:48:
8f:51:e3:ed:a7:9c:c5:9e:20:cf:53:45:a6:59:16:
9c:2e:09:c3:17:66:19:ec:65:ac:a9:5a:62:75:31:
f0:fc:82:9e:50:62:2c:18:4f:9e:51:33:de:05:c0:
52:1a:9a:22:5b:ca:1b:10:fe:d3:1f:cc:a1:a6:64:
25:24:c2:03:38:66:6c:41:97:ad:55:c9:96:c7:76:
07:c0:db:33:85:9d:a4:28:85:6a:8e:8f:9b:87:14:
e6:5f:fd:98:0c:b8:87:da:8e:5f:4c:89:5c:f3:24:
bf:3d:94:ca:eb:91:8a:22:e6:4c:63:ab:9e:47:88:
4a:f3:a6:74:61:57:14:4c:89:01:35:c5:c6:05:fd:
88:83:b9:d4:d3:76:83:c2:87:a7:9a:40:2c:32:cb:
98:60:df:2e:6c:31:fe:44:16:51:d0:ba:c9:91:66:
6e:cc:d1:91:ee:88:84:9d:69:28:90:56:07:3d:96:
d7:3d:6a:1b:e3:b5:32:fb:6f:c8:f4:7c:4a:eb:c7:
fe:e8:0e:2b:98:46:93:b2:09:0e:03:85:61:dd:bc:
68:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:11:0F:66:1A:F1:1D:90:2B:AC:DC:4A:25:43:44:C1:FE:B0:7A:F9
X509v3 Authority Key Identifier:
keyid:60:40:D0:B6:E8:40:23:B8:6F:8B:93:F3:10:50:BF:51:E1:6C:81:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEDQtuhAI7hvi5PzEFC_UeFsgb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f542c0-89a4-4d31-b0b5-e592a9ebe604/1/QREPZhrxHZArrNxKJUNEwf6wevk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f542c0-89a4-4d31-b0b5-e592a9ebe604/1/YEDQtuhAI7hvi5PzEFC_UeFsgb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.52.0/22
Signature Algorithm: sha256WithRSAEncryption
59:6b:0e:d5:de:a5:96:64:cf:74:b7:55:50:c6:46:54:f3:c9:
82:18:dd:d9:44:ff:66:ee:df:01:9c:4f:2e:3c:57:96:60:6f:
8e:a1:58:e7:10:6c:fd:53:5f:eb:6a:af:55:bc:72:a1:c5:7b:
b2:76:83:a7:47:67:6e:50:f3:f1:c4:62:b9:d3:7c:ba:39:d0:
98:59:7c:fe:13:d7:0d:62:cc:6d:70:c7:b3:40:76:8e:b7:05:
9f:05:fe:bf:73:c0:27:1b:a2:d5:9b:e1:ce:c4:b0:9b:27:82:
4a:11:c3:af:8b:b4:c7:b8:4b:7a:82:6a:74:9e:92:93:3e:5b:
ff:d6:0e:1c:79:70:c0:6e:c0:8d:84:71:f9:5a:01:30:43:9f:
39:3a:77:3e:cb:c0:ad:56:93:49:4a:2a:db:0b:21:d5:8a:30:
88:ec:8f:96:7c:e5:b3:2e:d2:50:11:40:52:30:f7:55:09:12:
8e:aa:2a:cd:6d:b2:9d:6c:8a:a0:fb:2b:e2:35:49:a5:4c:ee:
0c:b2:38:e0:9d:14:d1:59:84:7c:a7:b3:e8:42:71:a8:6e:bd:
82:cf:92:44:fc:4a:12:b6:bb:46:01:78:1a:f4:10:23:e8:7a:
da:fe:6b:d6:2c:5f:1d:62:03:47:70:95:f4:e0:5b:fa:e9:f1:
3f:c3:b3:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org